I have a problem with IP Source Guard on a Catalyst 3750 switch running 12.2.40SE IOS.
I've configured port-security, DHCP Snooping and DAI and they all work as expected.
However when it comes to IP Source Guard, things don't work as I expected... when a DHCP lease expires because a user has switched their machine off for a number of days, the Snooping binding is removed and IP source Guard then blocks the port. When the user switches the PC on again, I can see the DHCP request and a reply gets generated but the offer gets dropped because there is no Snooping binding!
One thing to note is that the DHCP server is on the switch itself and not on a port.
Does anyone know if this is the correct behaviour???